Selfhosting WCF Service and basicHttpBinding: A Windows identity that represents the caller is not provided by binding



I have a self hosting wcf service in a console application. A simple self hosting service is no problem, there are enough examples.

Now I want to impersonate the caller of the wcf service. Although I followed this msdn article I get follwing error:

The contract operation 'GetProduct' requires Windows identity for automatic impersonation. A Windows identity that represents the caller is not provided by binding

Here is my App.config of the wcf service in the CONSOLE application:

    <?xml version="1.0" encoding="utf-8" ?>
    <sectionGroup name="applicationSettings" type="System.Configuration.ApplicationSettingsGroup, System, Version=, Culture=neutral, PublicKeyToken=b77a5c561934e089" >
      <section name="SelfHostingWCFService.Properties.Settings" type="System.Configuration.ClientSettingsSection, System, Version=, Culture=neutral, PublicKeyToken=b77a5c561934e089" requirePermission="false" />
      <setting name="URL" serializeAs="String">
        <behavior name="ProductServiceBehavior">
          <serviceMetadata httpGetEnabled="True"/>
          <serviceDebug includeExceptionDetailInFaults="true"/>
          <serviceAuthorization impersonateCallerForAllOperations="true" />
      <service name="SelfHostingWCFService.ProductService"
            <add baseAddress="http://localhost:8081/ProductService"/>
        <endpoint address="soap" binding="basicHttpBinding" contract="SelfHostingWCFService.IProductService"/>
        <endpoint address="mex" binding="mexHttpBinding" contract="IMetadataExchange"/>

Here ist the Service Code:

    public class ProductService : IProductService
     [OperationBehavior(Impersonation = ImpersonationOption.Required)]
    public Product GetProduct(int productId)
        Product prod = new Product();
        prod.ID = productId;
        prod.Name = productId.ToString() + " XDS";

        return prod;

     [OperationBehavior(Impersonation = ImpersonationOption.Required)]
    public string User()
        string Name = string.Empty; 

        if (OperationContext.Current.ServiceSecurityContext != null)
            Name = OperationContext.Current.ServiceSecurityContext.PrimaryIdentity.Name;

        if (ServiceSecurityContext.Current != null)
            Name = ";" + ServiceSecurityContext.Current.WindowsIdentity.Name;

        Name = ";" + Thread.CurrentPrincipal.Identity.Name;

        return Name;

Here is the client code:

    private void button1_Click(object sender, EventArgs e)
        ProductService.ProductService srv = new ProductService.ProductService();

        //srv.Credentials = System.Net.CredentialCache.DefaultCredentials;
        ProductService.Product prod = srv.GetProduct(1, true);
        label1.Text = prod.Name;
        label2.Text = srv.User();


What do I making wrong? Please let me know.

Can I use basicHTTPBinding or must I use wsHTTPBinding?

many thanks for your help

I don't see your client-side configuration - you may need to set your client binding Security.Transport.ClientCredentialType

See here:

